Skillv1.1.0

ClawScan security

Skill Publisher · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 25, 2026, 6:58 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only publishing guide that is internally consistent: it only requires the clawhub CLI and reads the skill directory to perform a publish workflow, and nothing in the instructions requests unrelated credentials or system-wide access.
Guidance: This skill is a straightforward publish guide and appears coherent. Before using it: (1) verify the 'clawhub' npm package's publisher and source before running 'npm i -g clawhub' since global npm installs execute code with your user privileges; (2) ensure your skill directory does not contain secrets or private keys (publishing uploads the skill contents to ClawHub); (3) be aware 'clawhub login' opens a browser and will create CLI auth tokens locally—confirm where those tokens are stored and that you trust the authorization flow; and (4) check slug ownership before publishing to avoid unintentionally overwriting someone else's skill. If you want extra safety, inspect the clawhub CLI code or run it in a controlled/dev environment first.

Purpose & Capability: okThe name/description match the actual requirements and actions: the guide uses the clawhub CLI to inspect, login, publish, and verify a skill. Requiring the 'clawhub' binary is appropriate and expected for a publish tool.
Instruction Scope: okSKILL.md directs the agent to check the skill directory (e.g., cat <skill-dir>/_meta.json), run clawhub inspect/whoami/login/publish/search, and perform pre-publish checks. These file reads and commands are directly relevant to publishing and do not ask the agent to access unrelated files, environment variables, or external endpoints.
Install Mechanism: noteNo install spec is embedded (instruction-only). The doc instructs users to install the 'clawhub' CLI via 'npm i -g clawhub' if missing — this is a normal way to obtain a CLI but installing npm packages executes code on the host, so users should confirm the package source and publisher before installing.
Credentials: okNo environment variables, credentials, or config paths are requested by the skill. The guide relies only on the clawhub CLI and the skill directory contents, which is proportionate for publishing.
Persistence & Privilege: okThe skill is not always-enabled and does not request persistent system changes or cross-skill configuration. It instructs interactive login via 'clawhub login' (which will store auth locally under the CLI's normal storage) — this behavior is expected and scoped to the CLI.